The short version: the free diagnostic tool collects no personal data. Personal data is collected when you subscribe, sign up for email communications, or submit a URL for signal mapping. We do not sell your data. We do not profile you for advertising. We use only what we need to run the service.
This privacy policy applies to the Predictive History Method platform operated by Sang Heeringa, trading as Predictive History Method™, registered in the Netherlands. We are the data controller for personal data processed under this policy. For data-related questions or to exercise your rights: enquiries@predictivehistorymethod.com
| Activity | Data collected | Legal basis (GDPR) | Purpose | Retention |
|---|---|---|---|---|
| Free diagnostic (questions & result) | None. No registration, no tracking. Session cookie only (anonymous). | Strictly necessary | Maintain diagnostic session state during your visit. | Session only. Expires on browser close. |
| URL submission for signal mapping | The URL you submit. Processed via Anthropic API to generate your signal map. Not stored by PHM after processing. | Legitimate interests (Art 6(1)(f)) | Generate your signal analysis. The URL is not associated with your identity unless you are logged in. | Not retained by PHM. Anthropic’s data handling applies to API processing. |
| PHM Intelligence subscription | Name, email address, subscription tier, billing history. Payment card data processed and stored exclusively by Stripe — PHM does not see or store full card details. | Contract performance (Art 6(1)(b)) | Fulfil your subscription, process payments, issue receipts, manage your account, provide customer support. | For the duration of your subscription plus 7 years (legal/tax obligation). |
| Email newsletter / Signal Watch subscription | Email address. Name (optional). Stored in Mailchimp. | Consent (Art 6(1)(a)) | Send Signal Watch entries, platform updates, and editorial communications you have opted in to receive. | Until you unsubscribe. We delete inactive subscribers after 24 months. |
| Platform usage analytics | Page views, session duration, device and browser type, anonymised IP address. Processed via Google Analytics 4. | Legitimate interests (Art 6(1)(f)) | Understand how the platform is used to improve it. We do not use analytics for advertising or profiling. | 26 months (Google Analytics default). IP addresses are anonymised before storage. |
| Executive Field Guide download | Email address (if you request delivery by email). | Legitimate interests / consent | Deliver the Field Guide. You may receive one follow-up email. No ongoing marketing without separate consent. | 12 months unless you subscribe to ongoing communications. |
| Strategic Report request | Name, email, organisation, scope of request. | Contract performance (Art 6(1)(b)) | Deliver the report and communicate about it. | Duration of the engagement plus 3 years. |
We use the following third-party services to operate this platform. Each processes data only as necessary to provide their service to us and under contractual data processing agreements where required by GDPR.
| Provider | Purpose | Location | Safeguard |
|---|---|---|---|
| Stripe, Inc. | Payment processing and subscription management | United States | Standard Contractual Clauses (SCCs). Stripe is also certified under EU–US Data Privacy Framework. |
| Mailchimp (Intuit Inc.) | Email delivery and subscriber management | United States | Standard Contractual Clauses (SCCs). |
| Anthropic, PBC | AI-powered signal analysis (URL mapping and diagnostic) | United States | Standard Contractual Clauses (SCCs). API data is not used to train Anthropic models under our API agreement. |
| Google LLC (Google Analytics 4) | Platform usage analytics | United States | Standard Contractual Clauses (SCCs). IP anonymisation enabled. Advertising features disabled. |
| Netlify, Inc. | Platform hosting and serverless functions | United States | Standard Contractual Clauses (SCCs). |
All transfers to the United States are made under the Standard Contractual Clauses approved by the European Commission under Article 46(2)(c) GDPR, or an equivalent adequacy mechanism.
This platform uses the following categories of cookie:
| Category | Cookies used | Purpose | Consent required? |
|---|---|---|---|
| Strictly necessary | PHM session cookie | Maintains the state of your diagnostic session. Expires on browser close. Contains no personal data. | No — required for the tool to function. |
| Analytics | Google Analytics 4 (_ga, _ga_*) | Anonymised platform usage statistics. Does not identify you personally. | Yes — set on first visit. |
You can manage or withdraw cookie consent at any time. Manage cookie preferences. Withdrawing consent for analytics cookies does not affect your use of the platform.
If you are located in the European Economic Area (EEA) or United Kingdom, you have the following rights regarding your personal data:
To exercise any of these rights, email enquiries@predictivehistorymethod.com with the subject line “Data Rights Request”. We will respond within 30 days. We may ask you to verify your identity before processing the request.
You also have the right to lodge a complaint with the Dutch Data Protection Authority (Autoriteit Persoonsgegevens — autoriteitpersoonsgegevens.nl) or the supervisory authority in your country of residence.
We implement appropriate technical and organisational measures to protect personal data against unauthorised access, loss, or disclosure. Payment data is processed exclusively by Stripe and is never transmitted to or stored on PHM’s own servers. Access to subscriber data is limited to the platform operator. Our platform is hosted on Netlify with HTTPS enforced on all connections.
We retain personal data only for as long as necessary for the purpose for which it was collected, or as required by applicable law. Subscriber data is retained for the duration of the subscription plus 7 years for legal and tax purposes. Email marketing data is retained until you unsubscribe, with inactive subscribers deleted after 24 months. Anonymous session data is not retained after your session ends.
This platform is intended for professional use by adults. We do not knowingly collect personal data from anyone under 18 years of age. If you believe a minor has provided us with personal data, please contact us and we will delete it promptly.
We may update this privacy policy when our data practices change. We will notify subscribers by email of material changes. The effective date at the top of this page reflects the most recent version. We maintain prior versions of this policy on request.
For any privacy-related query, to exercise your rights, or to raise a concern: enquiries@predictivehistorymethod.com
If you are not satisfied with our response, you have the right to contact the Dutch Data Protection Authority (autoriteitpersoonsgegevens.nl) or your local supervisory authority.